ENDIAN Firewall - EFW LDAP Authentication + Active Directory

Having setup IPCOP before with active directory non transparent proxy I expect I could setup EFW much the same, however with 2.3 it is proving to be very difficult.

With IPCOP I had it set up so that only people in a certain AD group were allowed access to the internet. And IE pops up a user/pass box when they attempt to go out on the internet. I am in a school and this is how we like it.

What I have done in EFW is set the proxy to non transparent, set the port etc, set the authentication to (LDAP v2 v3 ,AD) and then put in my active directory information. It has taken me quite a while to make the Active Directory information work as it seems it won't allow any spaces in the Bind settings and a lot my AD OUs, and Groups unfortunately have them.

So once I modified my OU's so that there are no spaces I applied settings and test it by creating a new Access Policy by group, and select the AD security group I want to have Internet Access.

Now when I test it from a client pointing to the EFW for proxy server in IE, all I get is a page not found fault when going anywhere on the internet.

What am I doing wrong?